Rule group statement - AWS WAF, AWS Firewall Manager, and AWS Shield Advanced

Rule group statement

The rule group rule statement adds a reference to your web ACL rules list to a rule group that you manage. You don't see this option under your rule statements on the console, but when you work with the JSON format of your web ACL, any of your own rule groups that you've added show up under the web ACL rules as this type. For information about using your own rule groups, see Managing your own rule groups.

When you add a rule group to a web ACL, you can override the actions of rules in the group to Count or to another rule action. For more information, see Action overrides in rule groups.

Not nestable – You can't nest this statement type inside other statements, and you can't include it in a rule group. You can include it directly in a web ACL. You can narrow the scope of the requests that the rule group evaluates by adding one of the nestable statements within the rule group statement, as a scope-down statement.

WCUs – Set for the rule group at creation.

Where to find this rule statement

  • Console – During the process of creating a web ACL, on the Add rules and rule groups page, choose Add my own rules and rule groups, Rule group, and then add the rule group that you want to use.

  • APIRuleGroupReferenceStatement